-
漏洞信息 (24658)

source: http://www.securityfocus.com/bid/11337/info
It is reported that CubeCart is susceptible to an SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI data prior to including it in an SQL query.
An attacker may exploit this issue to manipulate SQL queries, potentially revealing or corrupting sensitive database data. This issue may also facilitate attacks against the underlying database software.
This vulnerability is reported to exist in version 2.0.1 of CubeCart. Other versions may also be affected.
http://www.example.com/store/index.php?cat_id=1 or 1=1

-
漏洞描述

CubeCart contains a flaw that will allow a remote attacker to inject arbitrary SQL code. The problem is that the 'cat_id' parameter in the 'index.php' script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

-
时间线

公开日期:
2004-10-06

发现日期:
2004-10-02

利用日期:2004-10-06

解决日期:Unknow

-
解决方案

Upgrade to version 2.0.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.